General

  • Target

    4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739.exe

  • Size

    59KB

  • Sample

    241112-1zse9s1nfv

  • MD5

    e6e847a7ab4665af067c74a800b73eb2

  • SHA1

    68281f4493357eb0c93b71055684890774c38318

  • SHA256

    4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739

  • SHA512

    8688e78e35e569b874f4e6f33a0f23a5a59abcac50c5ddeaf4ff67ccfa6d2f1a708a4c63867a6994803340ba74e17caed317fbd3b20cc6fbd67c9e47ab21bf70

  • SSDEEP

    1536:3+ZgwRdiE8cO4p1xRjfTvSq5r3ZiIZ4nouy8uh1aQF:OeodiUO4p13b9HiIeoutuh1aQF

Malware Config

Targets

    • Target

      4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739.exe

    • Size

      59KB

    • MD5

      e6e847a7ab4665af067c74a800b73eb2

    • SHA1

      68281f4493357eb0c93b71055684890774c38318

    • SHA256

      4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739

    • SHA512

      8688e78e35e569b874f4e6f33a0f23a5a59abcac50c5ddeaf4ff67ccfa6d2f1a708a4c63867a6994803340ba74e17caed317fbd3b20cc6fbd67c9e47ab21bf70

    • SSDEEP

      1536:3+ZgwRdiE8cO4p1xRjfTvSq5r3ZiIZ4nouy8uh1aQF:OeodiUO4p13b9HiIeoutuh1aQF

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks